Safety CI > kiwitcms/Kiwi

pyup-update-django-simple-history-3.5.0-to-3.7.0

1 year, 2 months ago

Update django-simple-history from 3.5.0 to 3.7.0

uWSGI 2.0.25.1 has known security vulnerabilities.

Package	Installed	Affected	Info
uWSGI	2.0.25.1	<2.0.26	show Affected versions of Uwsgi are vulnerable to HTTP Response splitting. An attacker that can inject malicious response headers into backend applications to cause an HTTP desynchronization attack.

master

1 year, 2 months ago

1e7ab97e

New translations django.po (Korean)

uWSGI 2.0.25.1 has known security vulnerabilities.

Package	Installed	Affected	Info
uWSGI	2.0.25.1	<2.0.26	show Affected versions of Uwsgi are vulnerable to HTTP Response splitting. An attacker that can inject malicious response headers into backend applications to cause an HTTP desynchronization attack.

master

1 year, 2 months ago

fa9e434a

Update python-gitlab from 4.5.0 to 4.6.0

uWSGI 2.0.25.1 has known security vulnerabilities.

Package	Installed	Affected	Info
uWSGI	2.0.25.1	<2.0.26	show Affected versions of Uwsgi are vulnerable to HTTP Response splitting. An attacker that can inject malicious response headers into backend applications to cause an HTTP desynchronization attack.

dependabot/pip/uwsgi-2.0.26

1 year, 2 months ago

823a4948

Bump uwsgi from 2.0.25.1 to 2.0.26 Bumps [uwsgi](https://uwsgi-docs.readthedocs.io/en/latest/) from

python-gitlab 4.5.0 has known security vulnerabilities.

Package	Installed	Affected	Info
python-gitlab	4.5.0	<5.3.1	show The Python-gitlab package has updated its Jinja2 dependency to version 3.1.5 to address a critical security vulnerability identified as CVE-2024-56326.
python-gitlab	4.5.0	<5.3.1	show The Python-gitlab package has updated its Jinja2 dependency to version 3.1.5 to address a critical security vulnerability identified as CVE-2024-56201.
python-gitlab	4.5.0	<4.6.0	show Python-gitlab version 4.6.0 updates its requests dependency from 2.31.0 to 2.32.0 to address the security vulnerability identified as CVE-2024-35195.

Package

Installed

Affected

Info

python-gitlab

4.5.0

<5.3.1

show

The Python-gitlab package has updated its Jinja2 dependency to version 3.1.5 to address a critical security vulnerability identified as CVE-2024-56326.

python-gitlab

4.5.0

<5.3.1

show

The Python-gitlab package has updated its Jinja2 dependency to version 3.1.5 to address a critical security vulnerability identified as CVE-2024-56201.

python-gitlab

4.5.0

<4.6.0

show

Python-gitlab version 4.6.0 updates its requests dependency from 2.31.0 to 2.32.0 to address the security vulnerability identified as CVE-2024-35195.

snyk-upgrade-7ce5ad6ea497a01ddf2d81c87f4a67a3

1 year, 2 months ago

0229edb5

fix: upgrade html5sortable from 0.13.3 to 0.14.0 Snyk has created this PR to upgrade html5sortable

uWSGI 2.0.25.1 and python-gitlab 4.5.0 have known security vulnerabilities.

Package	Installed	Affected	Info
uWSGI	2.0.25.1	<2.0.26	show Affected versions of Uwsgi are vulnerable to HTTP Response splitting. An attacker that can inject malicious response headers into backend applications to cause an HTTP desynchronization attack.
python-gitlab	4.5.0	<5.3.1	show The Python-gitlab package has updated its Jinja2 dependency to version 3.1.5 to address a critical security vulnerability identified as CVE-2024-56326.
python-gitlab	4.5.0	<5.3.1	show The Python-gitlab package has updated its Jinja2 dependency to version 3.1.5 to address a critical security vulnerability identified as CVE-2024-56201.
python-gitlab	4.5.0	<4.6.0	show Python-gitlab version 4.6.0 updates its requests dependency from 2.31.0 to 2.32.0 to address the security vulnerability identified as CVE-2024-35195.

pyup-update-python-gitlab-4.5.0-to-4.6.0

1 year, 2 months ago

c3dd7fca

Update python-gitlab from 4.5.0 to 4.6.0

uWSGI 2.0.25.1 has known security vulnerabilities.

Package	Installed	Affected	Info
uWSGI	2.0.25.1	<2.0.26	show Affected versions of Uwsgi are vulnerable to HTTP Response splitting. An attacker that can inject malicious response headers into backend applications to cause an HTTP desynchronization attack.

l10n_master

1 year, 2 months ago

6923c21e

New translations django.po (Korean)

uWSGI 2.0.25.1 and python-gitlab 4.5.0 have known security vulnerabilities.

Package	Installed	Affected	Info
uWSGI	2.0.25.1	<2.0.26	show Affected versions of Uwsgi are vulnerable to HTTP Response splitting. An attacker that can inject malicious response headers into backend applications to cause an HTTP desynchronization attack.
python-gitlab	4.5.0	<5.3.1	show The Python-gitlab package has updated its Jinja2 dependency to version 3.1.5 to address a critical security vulnerability identified as CVE-2024-56326.
python-gitlab	4.5.0	<5.3.1	show The Python-gitlab package has updated its Jinja2 dependency to version 3.1.5 to address a critical security vulnerability identified as CVE-2024-56201.
python-gitlab	4.5.0	<4.6.0	show Python-gitlab version 4.6.0 updates its requests dependency from 2.31.0 to 2.32.0 to address the security vulnerability identified as CVE-2024-35195.

dependabot/pip/django-5.0.6

1 year, 2 months ago

d7a29271

Bump django from 4.2.12 to 5.0.6 Bumps [django](https://github.com/django/django) from 4.2.12 to 5.

uWSGI 2.0.25.1 and python-gitlab 4.5.0 have known security vulnerabilities.

Package	Installed	Affected	Info
uWSGI	2.0.25.1	<2.0.26	show Affected versions of Uwsgi are vulnerable to HTTP Response splitting. An attacker that can inject malicious response headers into backend applications to cause an HTTP desynchronization attack.
python-gitlab	4.5.0	<5.3.1	show The Python-gitlab package has updated its Jinja2 dependency to version 3.1.5 to address a critical security vulnerability identified as CVE-2024-56326.
python-gitlab	4.5.0	<5.3.1	show The Python-gitlab package has updated its Jinja2 dependency to version 3.1.5 to address a critical security vulnerability identified as CVE-2024-56201.
python-gitlab	4.5.0	<4.6.0	show Python-gitlab version 4.6.0 updates its requests dependency from 2.31.0 to 2.32.0 to address the security vulnerability identified as CVE-2024-35195.

master

1 year, 2 months ago

c8014c1d

Remove django-debug-toolbar as a dev dependency

uWSGI 2.0.25.1 and python-gitlab 4.5.0 have known security vulnerabilities.

Package	Installed	Affected	Info
uWSGI	2.0.25.1	<2.0.26	show Affected versions of Uwsgi are vulnerable to HTTP Response splitting. An attacker that can inject malicious response headers into backend applications to cause an HTTP desynchronization attack.
python-gitlab	4.5.0	<5.3.1	show The Python-gitlab package has updated its Jinja2 dependency to version 3.1.5 to address a critical security vulnerability identified as CVE-2024-56326.
python-gitlab	4.5.0	<5.3.1	show The Python-gitlab package has updated its Jinja2 dependency to version 3.1.5 to address a critical security vulnerability identified as CVE-2024-56201.
python-gitlab	4.5.0	<4.6.0	show Python-gitlab version 4.6.0 updates its requests dependency from 2.31.0 to 2.32.0 to address the security vulnerability identified as CVE-2024-35195.

remove_django_debug_toolbar

1 year, 2 months ago

64f2c30d

Remove django-debug-toolbar as a dev dependency

uWSGI 2.0.25.1 and python-gitlab 4.5.0 have known security vulnerabilities.

Package	Installed	Affected	Info
uWSGI	2.0.25.1	<2.0.26	show Affected versions of Uwsgi are vulnerable to HTTP Response splitting. An attacker that can inject malicious response headers into backend applications to cause an HTTP desynchronization attack.
python-gitlab	4.5.0	<5.3.1	show The Python-gitlab package has updated its Jinja2 dependency to version 3.1.5 to address a critical security vulnerability identified as CVE-2024-56326.
python-gitlab	4.5.0	<5.3.1	show The Python-gitlab package has updated its Jinja2 dependency to version 3.1.5 to address a critical security vulnerability identified as CVE-2024-56201.
python-gitlab	4.5.0	<4.6.0	show Python-gitlab version 4.6.0 updates its requests dependency from 2.31.0 to 2.32.0 to address the security vulnerability identified as CVE-2024-35195.

l10n_master

1 year, 2 months ago

7b200008

[pre-commit.ci] auto fixes from pre-commit.com hooks for more information, see https://pre-commit.c

uWSGI 2.0.25.1 and python-gitlab 4.5.0 have known security vulnerabilities.

Package	Installed	Affected	Info
uWSGI	2.0.25.1	<2.0.26	show Affected versions of Uwsgi are vulnerable to HTTP Response splitting. An attacker that can inject malicious response headers into backend applications to cause an HTTP desynchronization attack.
python-gitlab	4.5.0	<5.3.1	show The Python-gitlab package has updated its Jinja2 dependency to version 3.1.5 to address a critical security vulnerability identified as CVE-2024-56326.
python-gitlab	4.5.0	<5.3.1	show The Python-gitlab package has updated its Jinja2 dependency to version 3.1.5 to address a critical security vulnerability identified as CVE-2024-56201.
python-gitlab	4.5.0	<4.6.0	show Python-gitlab version 4.6.0 updates its requests dependency from 2.31.0 to 2.32.0 to address the security vulnerability identified as CVE-2024-35195.

l10n_master

1 year, 2 months ago

2459db62

New translations django.po (Korean)

uWSGI 2.0.25.1 and python-gitlab 4.5.0 have known security vulnerabilities.

Package	Installed	Affected	Info
uWSGI	2.0.25.1	<2.0.26	show Affected versions of Uwsgi are vulnerable to HTTP Response splitting. An attacker that can inject malicious response headers into backend applications to cause an HTTP desynchronization attack.
python-gitlab	4.5.0	<5.3.1	show The Python-gitlab package has updated its Jinja2 dependency to version 3.1.5 to address a critical security vulnerability identified as CVE-2024-56326.
python-gitlab	4.5.0	<5.3.1	show The Python-gitlab package has updated its Jinja2 dependency to version 3.1.5 to address a critical security vulnerability identified as CVE-2024-56201.
python-gitlab	4.5.0	<4.6.0	show Python-gitlab version 4.6.0 updates its requests dependency from 2.31.0 to 2.32.0 to address the security vulnerability identified as CVE-2024-35195.

l10n_master

1 year, 2 months ago

f0ff8b7b

[pre-commit.ci] auto fixes from pre-commit.com hooks for more information, see https://pre-commit.c

uWSGI 2.0.25.1 and python-gitlab 4.5.0 have known security vulnerabilities.

Package	Installed	Affected	Info
uWSGI	2.0.25.1	<2.0.26	show Affected versions of Uwsgi are vulnerable to HTTP Response splitting. An attacker that can inject malicious response headers into backend applications to cause an HTTP desynchronization attack.
python-gitlab	4.5.0	<5.3.1	show The Python-gitlab package has updated its Jinja2 dependency to version 3.1.5 to address a critical security vulnerability identified as CVE-2024-56326.
python-gitlab	4.5.0	<5.3.1	show The Python-gitlab package has updated its Jinja2 dependency to version 3.1.5 to address a critical security vulnerability identified as CVE-2024-56201.
python-gitlab	4.5.0	<4.6.0	show Python-gitlab version 4.6.0 updates its requests dependency from 2.31.0 to 2.32.0 to address the security vulnerability identified as CVE-2024-35195.

l10n_master

1 year, 2 months ago

5455e43e

New translations django.po (Korean)

uWSGI 2.0.25.1 and python-gitlab 4.5.0 have known security vulnerabilities.

Package	Installed	Affected	Info
uWSGI	2.0.25.1	<2.0.26	show Affected versions of Uwsgi are vulnerable to HTTP Response splitting. An attacker that can inject malicious response headers into backend applications to cause an HTTP desynchronization attack.
python-gitlab	4.5.0	<5.3.1	show The Python-gitlab package has updated its Jinja2 dependency to version 3.1.5 to address a critical security vulnerability identified as CVE-2024-56326.
python-gitlab	4.5.0	<5.3.1	show The Python-gitlab package has updated its Jinja2 dependency to version 3.1.5 to address a critical security vulnerability identified as CVE-2024-56201.
python-gitlab	4.5.0	<4.6.0	show Python-gitlab version 4.6.0 updates its requests dependency from 2.31.0 to 2.32.0 to address the security vulnerability identified as CVE-2024-35195.

l10n_master

1 year, 2 months ago

7300c5a4

[pre-commit.ci] auto fixes from pre-commit.com hooks for more information, see https://pre-commit.c

uWSGI 2.0.25.1 and python-gitlab 4.5.0 have known security vulnerabilities.

Package	Installed	Affected	Info
uWSGI	2.0.25.1	<2.0.26	show Affected versions of Uwsgi are vulnerable to HTTP Response splitting. An attacker that can inject malicious response headers into backend applications to cause an HTTP desynchronization attack.
python-gitlab	4.5.0	<5.3.1	show The Python-gitlab package has updated its Jinja2 dependency to version 3.1.5 to address a critical security vulnerability identified as CVE-2024-56326.
python-gitlab	4.5.0	<5.3.1	show The Python-gitlab package has updated its Jinja2 dependency to version 3.1.5 to address a critical security vulnerability identified as CVE-2024-56201.
python-gitlab	4.5.0	<4.6.0	show Python-gitlab version 4.6.0 updates its requests dependency from 2.31.0 to 2.32.0 to address the security vulnerability identified as CVE-2024-35195.